Etude de méthode de sécurité des bases de données en serveur web

Abstract

With the evolution of the Internet, databases are exposed to attacks thus compromising the security of systems and causing very severe damage in an organization in terms of economy, reliability and confidentiality. Our theme is a study of a security method to reduce attacks, avoid the loss of information, the breach and destruction of data in web servers. In this sense, we designed a website to simulate some attacks of the databases and thus implement a countermeasure API to protect against these attacks. On the one hand, this API helps protect against SQL injection attacks, Cross-Site Scripting and Cross-Site Request Forgery, on the other hand it includes a function to check the level of passwords to ensure prevention against brute force breaking. The API can integrate into a website to protect the database.